Reblaze

Comprehensive cloud-based security

Web Application Firewall

Acomprehensive, robust Web Application Firewall and Intrusion Prevention System (WAF/IPS) is one of the core technologies of the Reblaze web security platform. When you protect your web assets with Reblaze, you get an advanced WAF with a unique combination of benefits. Reblaze protects against all the vulnerabilities in the OWASP Top 10, and many more. Its multivariate approach (explained below) is effective not only against known threat vectors, but also in blocking zero-day attacks.

Distributed Denial of Service (DDoS) Protection

Keeps your web apps up and fully responsive to your users.

Multi-layer DDoS protection

  • 24/7 incident support.
  • Fully managed (nothing to install or maintain) and always up-to-date.
  • Can handle bandwidth activity larger than most ISPs.
  • Also defeats hacking attempts, bots and more.
  • Resources scale automatically as needed.
  • Multivariate threat detection accurately identifies and blocks attack traffic.
  • Reblaze provides full-scope DoS and DDoS protection, defeating attacks across layers 3, 4 and 7: network, transport and application. (Even many dedicated DDoS solutions do not fully protect layer 7).

Bot Management

Keeps your web apps up and fully responsive to your users.

Exclude hostile bots from your APIs and web applications

  • Web applications and API servers receive only legitimate requests. They remain secure, responsive and performant.
  • Processing latency is minimal: ~0.5 ms.
  • Reblaze includes full bot mitigation in its comprehensive web security platform. Hostile traffic is blocked in the cloud, before it reaches the protected network.

Multivariate bot detection

  • Incoming web traffic is subjected to a series of increasingly stringent challenges. Failure of any challenge results in that requestor being immediately blocked from network access.

API Security

Reblaze provides full protection for APIs: web services and micro-services, mobile/native APIs and more.

Endpoint security is vital

  • Cloud-native and other service-based architectures have many advantages, and many organizations are adopting them. As a result, new RESTful web services and other API-based services are continually appearing.

Traditional solutions are inadequate

  • Traditional approaches to web security cannot fully protect APIs. For example, headless browser detection plays a large role in identifying hostile bots within website traffic—but for incoming API traffic, there is no browser environment to detect.

Reblaze: Robust security for APIs

  • Reverse-engineering prevention stops API attacks in their earliest stages.
  • API schema ingestion, validation, and enforcement provides automated protection.
  • A client-side SDK ensures mobile/native application traffic is TLS encrypted and continuously authenticated. All communications include an HMAC signature (a cryptographic identity mechanism on the client side) to harden communications between the application and the endpoint, ensuring that only requests from legitimate users are accepted.
  • Reblaze provides complete protection for microservice/API endpoints.

Accelerate Your Site with Global CDN Integration

Reblaze integrates seamlessly (including cache & SSL management, analytics and security) with virtually every CDN provider.

Don't lose your traffic

  • Reblaze, while making your web assets "secure by default", also integrates seamlessly with CDNs such as Amazon's CloudFront (among many others). This allows you to offload all static content service to the cloud. Your data center has a reduced load and can serve more users faster.
  • Today's Internet users are more impatient than ever. Researchers have found that an extra load-time delay of 250 milliseconds - just a quarter of a second - is often enough to convince a visitor to use your competitor's web site instead of yours.

The fastest content delivery possible

  • Each CDN server maintains a cache of your site's static and streaming content. Visitors receive your content directly from their closest server. Reblaze integrates with CDN providers that include a broad network of edge locations throughout the United States, Europe and Asia, thus providing accelerated delivery of your content.

The best site performance possible

  • Because the CDN delivers your static content, your server has a reduced load and can be more responsive when saving dynamic and interactive content. Further optimization occurs as dynamic/interactive connections are consolidated and reused whenever possible, so your server has fewer connections to manage. Again, your site's performance is accelerated.

The most uptime possible

  • Depending on the nature of your content, the CDN network can serve your site even if your server cannot be reached. Thus, your site remains up, even if your server goes down.

The most robust site possible

  • Reblaze uses the CDN of your choice to dynamically adjust to each site's needs. You don't need to maintain extra in-house server capacity just for an occasional spike in demand - Reblaze provides it for you. Nor do you have to worry about scaling up your bandwidth during denial-of-service attacks - again, Reblaze does that for you, automatically.

Open Source Web Security

Reblaze’s new Curiefense platform is a cloud native security solution for servers, containers, service meshes, and more.

A new approach to web security

  • Curiefense is an OSS GitOps-based security platform for modern microservice architectures. It adds traffic filtering capabilities to containers, service meshes, ingress gateways, and many other components of modern topologies.

Fully integrated with NGINX and Envoy Proxy

  • Curiefense also attaches directly to Envoy Proxy, and can be used anywhere Envoy runs: as a service mesh sidecar, ingress gateway, reverse proxy, load balancer, or other uses.
  • NGINX is the most popular web server in the world, and is widely used for other purposes as well. Curiefense adds built-in traffic filtering to NGINX environments.

Comprehensive web security

  • Curiefense is a unified platform, providing the same security technologies as Reblaze: WAF, DDoS protection, bot management, ATO prevention, API security, session flow control, advanced rate limiting and more.

Get Full Control of Your Traffic

Reblaze provides transparent, precise, real-time control of your web traffic.

Your traffic, fully revealed

  • Other security solutions typically report only o the traffic that they block, So how can you be sure that your traffic is being filtered correctly?
  • Reblaze allows you to know exactly what's going on in your site.
  • Reblaze makes all your traffic fully visible. You can see what is granted access to your network and what gets excluded. This allows you to fine-tune the filtering until it's exactly right.

Your traffic, easily managed

  • Reblaze combines the world's most advanced security technologies with an unmatched ease of use.
  • Conversely, Reblaze has been designed to be easy to use. Once it's set up, it makes your web assets secure by default. As Internet threats evolve, Reblaze adapts with countermeasures deploying automatically to protect your network.
  • Other security solutions are difficult and time-consuming to administer.

Your traffic, precisely managed

  • Reblaze gives you unmatched precision when managing your traffic.
  • Conversely, Reblaze's ACL system gives you unique fine-grained control of your traffic. You can allow or deny access depending on city, country, company network, visitor behavior and more. I addition, Reblaze's human and behavioral detection gives you full control over what resources are visible and to whom. For example, you can allow access to normal human visitors and certain benevolent bots (such as those from search engines), while denying access to anonymized/proxied humans and malicious scraper bots.
  • Other security solutions provide only a few options for controlling access to your web assets.

Your traffic, in real time

  • Reblaze gives you complete, real-time information about what is going on inside your site.
  • Conversely, Reblaze has a live traffic mode, which shows you what is actually happening right now: who is visiting your site, where they are from, what they are looking at and so on. You can view traffic data by individual visitors or aggregate them by city, country, company, network, browsing behavior and more.
  • Other security solutions provide analytics that show you what happened in the past.

Account Takeover (ATO) Prevention

Reblaze keeps user and customer accounts secure.

Prevents account abuse

  • The Reblaze platform includes ATO protection as a core part of its comprehensive web security software suite. It blocks unauthorized attempts to use or discover credentials, access user accounts, compromise active sessions and other forms of ATO.

Complete account security

  • Reblaze uses multivariate analysis, identifying threat traffic not only by its source but also by its identity, behavior, and intent. The platform deploys in a dedicated VPC (Virtual Private Cloud) geolocated immediately in front of the protected network, blocking malicious traffic with near-zero latency.

Many threats, one security solution

  • Modern threat actors use a variety of sophisticated tactics to wage ATO attacks. Reblaze protects against them all: it prevents credential theft, credential discovery, session attacks, and the abuse of valid credentials.